CVE-2023-30772

Опубликовано: 16 апр. 2023

Источник: debian

EPSS Низкий

Описание

The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/power/supply/da9150-charger.c if a physically proximate attacker unplugs a device.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	6.1.25-1		package
linux	fixed	5.10.178-1	bullseye	package

Примечания

https://git.kernel.org/linus/06615d11cc78162dfd5116efb71f29eb29502d37 (6.3-rc4)
CONFIG_CHARGER_DA9150 not enabled in Debian.

EPSS

Процентиль: 18%

0.00059

Низкий

Связанные уязвимости

CVE-2023-30772

CVSS3: 6.4

ubuntu

почти 3 года назад

The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/power/supply/da9150-charger.c if a physically proximate attacker unplugs a device.

CVE-2023-30772

CVSS3: 6.4

redhat

почти 3 года назад

The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/power/supply/da9150-charger.c if a physically proximate attacker unplugs a device.

CVE-2023-30772

CVSS3: 6.4

nvd

почти 3 года назад

The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/power/supply/da9150-charger.c if a physically proximate attacker unplugs a device.

CVE-2023-30772

CVSS3: 6.4

msrc

почти 3 года назад

Описание отсутствует

GHSA-gfp2-wr23-2vxj

CVSS3: 6.4

github

почти 3 года назад

The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/power/supply/da9150-charger.c if a physically proximate attacker unplugs a device.

EPSS

Процентиль: 18%

0.00059

Низкий